https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 30 Jun 2026 17:38:22 +0000 https://db.gcve.eu/sighting/dd6e70d3-1b7d-43d0-b065-4ac72816e508/export {"uuid": "dd6e70d3-1b7d-43d0-b065-4ac72816e508", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12207", "type": "seen", "source": "https://t.me/ctinow/182787", "content": "https://ift.tt/6hqEY2m\nCVE-2018-12207 | Microsoft Windows up to Server 2019 input validation (RHSA-2019:3916)", "creation_timestamp": "2024-02-11T14:07:16.000000Z"} {"uuid": "dd6e70d3-1b7d-43d0-b065-4ac72816e508", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12207", "type": "seen", "source": "https://t.me/ctinow/182787", "content": "https://ift.tt/6hqEY2m\nCVE-2018-12207 | Microsoft Windows up to Server 2019 input validation (RHSA-2019:3916)", "creation_timestamp": "2024-02-11T14:07:16.000000Z"} https://db.gcve.eu/sighting/dd6e70d3-1b7d-43d0-b065-4ac72816e508/export Sun, 11 Feb 2024 14:07:16 +0000 https://db.gcve.eu/sighting/0bc811cb-e3fd-4cd9-8500-28431fb522b4/export {"uuid": "0bc811cb-e3fd-4cd9-8500-28431fb522b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12207", "type": "seen", "source": "https://t.me/true_secator/3979", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Tacito Security \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438\u00a0PoC-\u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u00a0\u0434\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0435\u0439 \u043d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435\u00a0iTLB multihit.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0448\u0438\u0440\u043e\u043a\u0443\u044e \u043b\u0438\u043d\u0435\u0439\u043a\u0443 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u043e\u0432 Intel \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0431\u0443\u0444\u0435\u0440\u043e\u043c \u0430\u0441\u0441\u043e\u0446\u0438\u0430\u0442\u0438\u0432\u043d\u043e\u0439 \u0442\u0440\u0430\u043d\u0441\u043b\u044f\u0446\u0438\u0438 (TLB), \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u043a\u044d\u0448\u0435\u043c \u0426\u041f, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u043c \u0434\u043b\u044f \u0443\u0441\u043a\u043e\u0440\u0435\u043d\u0438\u044f \u0442\u0440\u0430\u043d\u0441\u043b\u044f\u0446\u0438\u0438 \u0430\u0434\u0440\u0435\u0441\u0430 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438 \u0432 \u0430\u0434\u0440\u0435\u0441 \u0444\u0438\u0437\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a DoS-\u0430\u0442\u0430\u043a\u0435, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043a\u043e\u0434\u0443, \u0440\u0430\u0431\u043e\u0442\u0430\u044e\u0449\u0435\u043c\u0443 \u043d\u0430 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u0435, \u0432\u044b\u0437\u044b\u0432\u0430\u0442\u044c \u0441\u0431\u043e\u0439 \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u043f\u0440\u0438 \u0440\u0430\u0437\u0431\u0438\u0432\u043a\u0435 \u0431\u043e\u043b\u044c\u0448\u0438\u0445 \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u043e\u0432 \u043f\u0430\u043c\u044f\u0442\u0438.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Tacito \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043e\u0448\u0438\u0431\u043a\u0443 \u0432 2017 \u0433\u043e\u0434\u0443, \u043d\u043e \u043d\u0435 \u0441\u043e\u043e\u0431\u0449\u0430\u043b\u0438 \u043e \u043d\u0435\u0439 \u0432 Intel.\n\n\u0414\u0432\u0430 \u0433\u043e\u0434\u0430 \u0441\u043f\u0443\u0441\u0442\u044f \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u043c \u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b \u0442\u0443 \u0436\u0435 \u0441\u0430\u043c\u0443\u044e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u043f\u0440\u0438\u0441\u0432\u043e\u0438\u0432 \u0435\u0439 CVE-2018-12207.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u0430\u043c Intel \u043d\u0435 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0447\u0435\u0440\u0435\u0437 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0448\u0438\u0432\u043a\u0438.\n\n\u0412\u043c\u0435\u0441\u0442\u043e \u044d\u0442\u043e\u0433\u043e \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0438 \u041e\u0421 \u0438 \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u043e\u0432 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043d\u0430 \u0443\u0440\u043e\u0432\u043d\u0435 \u041f\u041e, \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u0432 \u043c\u0435\u0440\u044b \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e.\n\n\u0422\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u0440\u0435\u0441\u0435\u0440\u0447\u0435\u0440\u044b Tacito \u043f\u043e\u0441\u043b\u0435 \u0442\u0435\u0441\u0442\u043e\u0432 \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0445 \u0440\u0435\u0448\u0435\u043d\u0438\u0439, \u043f\u0440\u0438\u0448\u043b\u0438 \u043a \u0432\u044b\u0432\u043e\u0434\u0443, \u0447\u0442\u043e \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u043e\u0432 \u0440\u0435\u0448\u0438\u043b\u0438 \u043d\u0435 \u0432\u043a\u043b\u044e\u0447\u0430\u0442\u044c \u0438\u0445 \u043f\u043e \u0443\u043c\u043e\u043b\u0447\u0430\u043d\u0438\u044e.\n\n\u0420\u0435\u0448\u0435\u043d\u0438\u0435 \u0431\u044b\u043b\u043e \u043e\u0431\u0443\u0441\u043b\u043e\u0432\u043b\u0435\u043d\u043e \u043d\u0435\u0433\u0430\u0442\u0438\u0432\u043d\u044b\u043c \u0432\u043b\u0438\u044f\u043d\u0438\u0435\u043c \u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043f\u0430\u043c\u044f\u0442\u0438 \u0438 \u043e\u0441\u0442\u0430\u0432\u0438\u043b\u043e \u0444\u0430\u043a\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u043e\u0432 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c\u0438 \u0434\u043b\u044f \u0430\u0442\u0430\u043a\u0438 iTLB multihit.", "creation_timestamp": "2023-01-24T16:01:05.000000Z"} {"uuid": "0bc811cb-e3fd-4cd9-8500-28431fb522b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12207", "type": "seen", "source": "https://t.me/true_secator/3979", "content": "\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Tacito Security \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438\u00a0PoC-\u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u00a0\u0434\u043b\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0435\u0439 \u043d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435\u00a0iTLB multihit.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0448\u0438\u0440\u043e\u043a\u0443\u044e \u043b\u0438\u043d\u0435\u0439\u043a\u0443 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440\u043e\u0432 Intel \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0431\u0443\u0444\u0435\u0440\u043e\u043c \u0430\u0441\u0441\u043e\u0446\u0438\u0430\u0442\u0438\u0432\u043d\u043e\u0439 \u0442\u0440\u0430\u043d\u0441\u043b\u044f\u0446\u0438\u0438 (TLB), \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u043a\u044d\u0448\u0435\u043c \u0426\u041f, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u043c \u0434\u043b\u044f \u0443\u0441\u043a\u043e\u0440\u0435\u043d\u0438\u044f \u0442\u0440\u0430\u043d\u0441\u043b\u044f\u0446\u0438\u0438 \u0430\u0434\u0440\u0435\u0441\u0430 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438 \u0432 \u0430\u0434\u0440\u0435\u0441 \u0444\u0438\u0437\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u0430\u043c\u044f\u0442\u0438.\n\n\u041e\u0448\u0438\u0431\u043a\u0430 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a DoS-\u0430\u0442\u0430\u043a\u0435, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043a\u043e\u0434\u0443, \u0440\u0430\u0431\u043e\u0442\u0430\u044e\u0449\u0435\u043c\u0443 \u043d\u0430 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u0435, \u0432\u044b\u0437\u044b\u0432\u0430\u0442\u044c \u0441\u0431\u043e\u0439 \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432 \u043f\u0440\u0438 \u0440\u0430\u0437\u0431\u0438\u0432\u043a\u0435 \u0431\u043e\u043b\u044c\u0448\u0438\u0445 \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u043e\u0432 \u043f\u0430\u043c\u044f\u0442\u0438.\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Tacito \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u043e\u0448\u0438\u0431\u043a\u0443 \u0432 2017 \u0433\u043e\u0434\u0443, \u043d\u043e \u043d\u0435 \u0441\u043e\u043e\u0431\u0449\u0430\u043b\u0438 \u043e \u043d\u0435\u0439 \u0432 Intel.\n\n\u0414\u0432\u0430 \u0433\u043e\u0434\u0430 \u0441\u043f\u0443\u0441\u0442\u044f \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u043c \u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b \u0442\u0443 \u0436\u0435 \u0441\u0430\u043c\u0443\u044e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0443, \u043f\u0440\u0438\u0441\u0432\u043e\u0438\u0432 \u0435\u0439 CVE-2018-12207.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u0430\u043c Intel \u043d\u0435 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0447\u0435\u0440\u0435\u0437 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0448\u0438\u0432\u043a\u0438.\n\n\u0412\u043c\u0435\u0441\u0442\u043e \u044d\u0442\u043e\u0433\u043e \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0438 \u041e\u0421 \u0438 \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u043e\u0432 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043d\u0430 \u0443\u0440\u043e\u0432\u043d\u0435 \u041f\u041e, \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u0432 \u043c\u0435\u0440\u044b \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e.\n\n\u0422\u0435\u043c \u043d\u0435 \u043c\u0435\u043d\u0435\u0435, \u0440\u0435\u0441\u0435\u0440\u0447\u0435\u0440\u044b Tacito \u043f\u043e\u0441\u043b\u0435 \u0442\u0435\u0441\u0442\u043e\u0432 \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0445 \u0440\u0435\u0448\u0435\u043d\u0438\u0439, \u043f\u0440\u0438\u0448\u043b\u0438 \u043a \u0432\u044b\u0432\u043e\u0434\u0443, \u0447\u0442\u043e \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u043e\u0432 \u0440\u0435\u0448\u0438\u043b\u0438 \u043d\u0435 \u0432\u043a\u043b\u044e\u0447\u0430\u0442\u044c \u0438\u0445 \u043f\u043e \u0443\u043c\u043e\u043b\u0447\u0430\u043d\u0438\u044e.\n\n\u0420\u0435\u0448\u0435\u043d\u0438\u0435 \u0431\u044b\u043b\u043e \u043e\u0431\u0443\u0441\u043b\u043e\u0432\u043b\u0435\u043d\u043e \u043d\u0435\u0433\u0430\u0442\u0438\u0432\u043d\u044b\u043c \u0432\u043b\u0438\u044f\u043d\u0438\u0435\u043c \u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0441\u0442\u044c \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043f\u0430\u043c\u044f\u0442\u0438 \u0438 \u043e\u0441\u0442\u0430\u0432\u0438\u043b\u043e \u0444\u0430\u043a\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u043e\u0432 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c\u0438 \u0434\u043b\u044f \u0430\u0442\u0430\u043a\u0438 iTLB multihit.", "creation_timestamp": "2023-01-24T16:01:05.000000Z"} https://db.gcve.eu/sighting/0bc811cb-e3fd-4cd9-8500-28431fb522b4/export Tue, 24 Jan 2023 16:01:05 +0000 https://db.gcve.eu/sighting/3263ea9d-a2f5-41da-bc0e-ba19c81d2100/export {"uuid": "3263ea9d-a2f5-41da-bc0e-ba19c81d2100", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12207", "type": "seen", "source": "https://t.me/alexmakus/3138", "content": "RED HAT VULNERABILITY RESPONSE\nRed Hat Product Security is aware of a series of vulnerabilities - CVE-2018-12207 - Machine Check Error on Page Size Change, CVE-2019-11135 - TSX Asynchronous Abort, and CVE-2019-0155, CVE-2019-0154 - i915 graphics driver.\n\nToday, a series of three Common Exposures and Vulnerabilities (CVE-2018-12207 - Machine Check Error on Page Size Change, CVE-2019-11135 - TSX Asynchronous Abort, and CVE-2019-0155, CVE-2019-0154 - i915 graphics driver) affecting Intel CPUs were made public. If exploited, these CVEs could potentially allow malicious actors to gain read access to sensitive data. To help provide more context around this vulnerability from an open source technology perspective, Red Hat Product Security is providing several resources around the impact of these three CVEs on our customers and the enterprise IT community.\nSeverity:\n \u2022 Red Hat rates CVE-2018-12207, Machine Check Error on Page Size Change, as having a security impact of IMPORTANT severity.\n \u2022 Red Hat rates CVE-2019-11135, TSX Asynchronous Abort, as having a security impact of MODERATE severity.\n \u2022 Red Hat rates CVE-2019-0155 as IMPORTANT and CVE-2019-0154, both i915 graphics driver, as having a security impact of MODERATE .\nMore detailed overviews of these vulnerabilities have been published by Red Hat and are available publicly via the Red Hat Customer Portal:\n \u2022 https://access.redhat.com/security/vulnerabilities/ifu-page-mce\n \u2022 https://access.redhat.com/solutions/tsx-asynchronousabort\n \u2022 https://access.redhat.com/solutions/i915-graphics\n\nCustomer Action:\nRed Hat customers running affected versions of these Red Hat products are strongly recommended to update them as soon as the erratas are available. Customers are urged to apply the available updates immediately and enable the mitigations as they feel appropriate. Customers running Red Hat products with our Certified Cloud Provider Partners should contact their Cloud provider for further details.\n\n\u0410\u041f\u0414 \u043f\u043e\u0447\u0438\u043d\u0438\u043b \u0441\u0441\u044b\u043b\u043a\u0438", "creation_timestamp": "2019-11-13T14:55:03.000000Z"} {"uuid": "3263ea9d-a2f5-41da-bc0e-ba19c81d2100", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12207", "type": "seen", "source": "https://t.me/alexmakus/3138", "content": "RED HAT VULNERABILITY RESPONSE\nRed Hat Product Security is aware of a series of vulnerabilities - CVE-2018-12207 - Machine Check Error on Page Size Change, CVE-2019-11135 - TSX Asynchronous Abort, and CVE-2019-0155, CVE-2019-0154 - i915 graphics driver.\n\nToday, a series of three Common Exposures and Vulnerabilities (CVE-2018-12207 - Machine Check Error on Page Size Change, CVE-2019-11135 - TSX Asynchronous Abort, and CVE-2019-0155, CVE-2019-0154 - i915 graphics driver) affecting Intel CPUs were made public. If exploited, these CVEs could potentially allow malicious actors to gain read access to sensitive data. To help provide more context around this vulnerability from an open source technology perspective, Red Hat Product Security is providing several resources around the impact of these three CVEs on our customers and the enterprise IT community.\nSeverity:\n \u2022 Red Hat rates CVE-2018-12207, Machine Check Error on Page Size Change, as having a security impact of IMPORTANT severity.\n \u2022 Red Hat rates CVE-2019-11135, TSX Asynchronous Abort, as having a security impact of MODERATE severity.\n \u2022 Red Hat rates CVE-2019-0155 as IMPORTANT and CVE-2019-0154, both i915 graphics driver, as having a security impact of MODERATE .\nMore detailed overviews of these vulnerabilities have been published by Red Hat and are available publicly via the Red Hat Customer Portal:\n \u2022 https://access.redhat.com/security/vulnerabilities/ifu-page-mce\n \u2022 https://access.redhat.com/solutions/tsx-asynchronousabort\n \u2022 https://access.redhat.com/solutions/i915-graphics\n\nCustomer Action:\nRed Hat customers running affected versions of these Red Hat products are strongly recommended to update them as soon as the erratas are available. Customers are urged to apply the available updates immediately and enable the mitigations as they feel appropriate. Customers running Red Hat products with our Certified Cloud Provider Partners should contact their Cloud provider for further details.\n\n\u0410\u041f\u0414 \u043f\u043e\u0447\u0438\u043d\u0438\u043b \u0441\u0441\u044b\u043b\u043a\u0438", "creation_timestamp": "2019-11-13T14:55:03.000000Z"} https://db.gcve.eu/sighting/3263ea9d-a2f5-41da-bc0e-ba19c81d2100/export Wed, 13 Nov 2019 14:55:03 +0000 https://db.gcve.eu/sighting/d75f59df-0d85-455c-87f9-b61436f4d275/export {"uuid": "d75f59df-0d85-455c-87f9-b61436f4d275", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12207", "type": "seen", "source": "https://t.me/antichat/7025", "content": "RED HAT VULNERABILITY RESPONSE\nRed Hat Product Security is aware of a series of vulnerabilities - CVE-2018-12207 - Machine Check Error on Page Size Change, CVE-2019-11135 - TSX Asynchronous Abort, and CVE-2019-0155, CVE-2019-0154 - i915 graphics driver.\n\nToday, a series of three Common Exposures and Vulnerabilities (CVE-2018-12207 - Machine Check Error on Page Size Change, CVE-2019-11135 - TSX Asynchronous Abort, and CVE-2019-0155, CVE-2019-0154 - i915 graphics driver) affecting Intel CPUs were made public. If exploited, these CVEs could potentially allow malicious actors to gain read access to sensitive data. To help provide more context around this vulnerability from an open source technology perspective, Red Hat Product Security is providing several resources around the impact of these three CVEs on our customers and the enterprise IT community.\nSeverity:\n \u2022 Red Hat rates CVE-2018-12207, Machine Check Error on Page Size Change, as having a security impact of IMPORTANT severity.\n \u2022 Red Hat rates CVE-2019-11135, TSX Asynchronous Abort, as having a security impact of MODERATE severity.\n \u2022 Red Hat rates CVE-2019-0155 as IMPORTANT and CVE-2019-0154, both i915 graphics driver, as having a security impact of MODERATE .\nMore detailed overviews of these vulnerabilities have been published by Red Hat and are available publicly via the Red Hat Customer Portal:\n \u2022 https://access.redhat.com/security/vulnerabilities/ifu-page-mce\n \u2022 https://access.redhat.com/solutions/tsx-asynchronousabort\n \u2022 https://access.redhat.com/solutions/i915-graphics\n\nCustomer Action:\nRed Hat customers running affected versions of these Red Hat products are strongly recommended to update them as soon as the erratas are available. Customers are urged to apply the available updates immediately and enable the mitigations as they feel appropriate. Customers running Red Hat products with our Certified Cloud Provider Partners should contact their Cloud provider for further details.", "creation_timestamp": "2019-11-12T23:17:42.000000Z"} {"uuid": "d75f59df-0d85-455c-87f9-b61436f4d275", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12207", "type": "seen", "source": "https://t.me/antichat/7025", "content": "RED HAT VULNERABILITY RESPONSE\nRed Hat Product Security is aware of a series of vulnerabilities - CVE-2018-12207 - Machine Check Error on Page Size Change, CVE-2019-11135 - TSX Asynchronous Abort, and CVE-2019-0155, CVE-2019-0154 - i915 graphics driver.\n\nToday, a series of three Common Exposures and Vulnerabilities (CVE-2018-12207 - Machine Check Error on Page Size Change, CVE-2019-11135 - TSX Asynchronous Abort, and CVE-2019-0155, CVE-2019-0154 - i915 graphics driver) affecting Intel CPUs were made public. If exploited, these CVEs could potentially allow malicious actors to gain read access to sensitive data. To help provide more context around this vulnerability from an open source technology perspective, Red Hat Product Security is providing several resources around the impact of these three CVEs on our customers and the enterprise IT community.\nSeverity:\n \u2022 Red Hat rates CVE-2018-12207, Machine Check Error on Page Size Change, as having a security impact of IMPORTANT severity.\n \u2022 Red Hat rates CVE-2019-11135, TSX Asynchronous Abort, as having a security impact of MODERATE severity.\n \u2022 Red Hat rates CVE-2019-0155 as IMPORTANT and CVE-2019-0154, both i915 graphics driver, as having a security impact of MODERATE .\nMore detailed overviews of these vulnerabilities have been published by Red Hat and are available publicly via the Red Hat Customer Portal:\n \u2022 https://access.redhat.com/security/vulnerabilities/ifu-page-mce\n \u2022 https://access.redhat.com/solutions/tsx-asynchronousabort\n \u2022 https://access.redhat.com/solutions/i915-graphics\n\nCustomer Action:\nRed Hat customers running affected versions of these Red Hat products are strongly recommended to update them as soon as the erratas are available. Customers are urged to apply the available updates immediately and enable the mitigations as they feel appropriate. Customers running Red Hat products with our Certified Cloud Provider Partners should contact their Cloud provider for further details.", "creation_timestamp": "2019-11-12T23:17:42.000000Z"} https://db.gcve.eu/sighting/d75f59df-0d85-455c-87f9-b61436f4d275/export Tue, 12 Nov 2019 23:17:42 +0000 https://db.gcve.eu/sighting/619079ab-c486-430c-a02d-b115aac9ee1a/export {"uuid": "619079ab-c486-430c-a02d-b115aac9ee1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12200", "type": "seen", "source": "https://t.me/cibsecurity/3136", "content": "ATENTION\u203c New - CVE-2018-12200\n\nInsufficient access control in Intel(R) Capability Licensing Service before version 1.50.638.1 may allow an unprivileged user to potentially escalate privileges via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:20:02.000000Z"} {"uuid": "619079ab-c486-430c-a02d-b115aac9ee1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12200", "type": "seen", "source": "https://t.me/cibsecurity/3136", "content": "ATENTION\u203c New - CVE-2018-12200\n\nInsufficient access control in Intel(R) Capability Licensing Service before version 1.50.638.1 may allow an unprivileged user to potentially escalate privileges via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:20:02.000000Z"} https://db.gcve.eu/sighting/619079ab-c486-430c-a02d-b115aac9ee1a/export Thu, 14 Mar 2019 23:20:02 +0000 https://db.gcve.eu/sighting/fb09b921-aa5e-4135-b55a-beb33dec59e9/export {"uuid": "fb09b921-aa5e-4135-b55a-beb33dec59e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12201", "type": "seen", "source": "https://t.me/cibsecurity/3135", "content": "ATENTION\u203c New - CVE-2018-12201\n\nBuffer overflow vulnerability in Platform Sample / Silicon Reference firmware for 8th Generation Intel(R) Core Processor, 7th Generation Intel(R) Core Processor, Intel(R) Pentium(R) Silver J5005 Processor, Intel(R) Pentium(R) Silver N5000 Processor, Intel(R) Celeron(R) J4105 Processor, Intel(R) Celeron(R) J4005 Processor, Intel Celeron(R) N4100 Processor and Intel(R) Celeron N4000 Processor may allow privileged user to potentially execute arbitrary code via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:20:01.000000Z"} {"uuid": "fb09b921-aa5e-4135-b55a-beb33dec59e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12201", "type": "seen", "source": "https://t.me/cibsecurity/3135", "content": "ATENTION\u203c New - CVE-2018-12201\n\nBuffer overflow vulnerability in Platform Sample / Silicon Reference firmware for 8th Generation Intel(R) Core Processor, 7th Generation Intel(R) Core Processor, Intel(R) Pentium(R) Silver J5005 Processor, Intel(R) Pentium(R) Silver N5000 Processor, Intel(R) Celeron(R) J4105 Processor, Intel(R) Celeron(R) J4005 Processor, Intel Celeron(R) N4100 Processor and Intel(R) Celeron N4000 Processor may allow privileged user to potentially execute arbitrary code via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:20:01.000000Z"} https://db.gcve.eu/sighting/fb09b921-aa5e-4135-b55a-beb33dec59e9/export Thu, 14 Mar 2019 23:20:01 +0000 https://db.gcve.eu/sighting/965dcfd3-96d6-4c83-8b2e-30ea800a1040/export {"uuid": "965dcfd3-96d6-4c83-8b2e-30ea800a1040", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12202", "type": "seen", "source": "https://t.me/cibsecurity/3134", "content": "ATENTION\u203c New - CVE-2018-12202\n\nPrivilege escalation vulnerability in Platform Sample/ Silicon Reference firmware for 8th Generation Intel(R) Core Processor, 7th Generation Intel(R) Core Processor may allow privileged user to potentially leverage existing features via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:20:00.000000Z"} {"uuid": "965dcfd3-96d6-4c83-8b2e-30ea800a1040", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12202", "type": "seen", "source": "https://t.me/cibsecurity/3134", "content": "ATENTION\u203c New - CVE-2018-12202\n\nPrivilege escalation vulnerability in Platform Sample/ Silicon Reference firmware for 8th Generation Intel(R) Core Processor, 7th Generation Intel(R) Core Processor may allow privileged user to potentially leverage existing features via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:20:00.000000Z"} https://db.gcve.eu/sighting/965dcfd3-96d6-4c83-8b2e-30ea800a1040/export Thu, 14 Mar 2019 23:20:00 +0000 https://db.gcve.eu/sighting/09f69c43-d041-4f13-afb7-6d32cd6f7145/export {"uuid": "09f69c43-d041-4f13-afb7-6d32cd6f7145", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12203", "type": "seen", "source": "https://t.me/cibsecurity/3133", "content": "ATENTION\u203c New - CVE-2018-12203\n\nDenial of service vulnerability in Platform Sample/ Silicon Reference firmware for 8th Generation Intel Core Processor, 7th Generation Intel Core Processor may allow privileged user to potentially execute arbitrary code via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:19:59.000000Z"} {"uuid": "09f69c43-d041-4f13-afb7-6d32cd6f7145", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12203", "type": "seen", "source": "https://t.me/cibsecurity/3133", "content": "ATENTION\u203c New - CVE-2018-12203\n\nDenial of service vulnerability in Platform Sample/ Silicon Reference firmware for 8th Generation Intel Core Processor, 7th Generation Intel Core Processor may allow privileged user to potentially execute arbitrary code via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:19:59.000000Z"} https://db.gcve.eu/sighting/09f69c43-d041-4f13-afb7-6d32cd6f7145/export Thu, 14 Mar 2019 23:19:59 +0000 https://db.gcve.eu/sighting/52a321ed-0fd0-4100-937e-2fca8a362295/export {"uuid": "52a321ed-0fd0-4100-937e-2fca8a362295", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12204", "type": "seen", "source": "https://t.me/cibsecurity/3132", "content": "ATENTION\u203c New - CVE-2018-12204\n\nPrivilege escalation vulnerability in Platform Sample/ Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially execute arbitrary code via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:19:55.000000Z"} {"uuid": "52a321ed-0fd0-4100-937e-2fca8a362295", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12204", "type": "seen", "source": "https://t.me/cibsecurity/3132", "content": "ATENTION\u203c New - CVE-2018-12204\n\nPrivilege escalation vulnerability in Platform Sample/ Silicon Reference firmware Intel(R) Server Board, Intel(R) Server System and Intel(R) Compute Module may allow privileged user to potentially execute arbitrary code via local access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:19:55.000000Z"} https://db.gcve.eu/sighting/52a321ed-0fd0-4100-937e-2fca8a362295/export Thu, 14 Mar 2019 23:19:55 +0000 https://db.gcve.eu/sighting/2c54a31b-589b-47c5-a909-13294f3e2e5b/export {"uuid": "2c54a31b-589b-47c5-a909-13294f3e2e5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12205", "type": "seen", "source": "https://t.me/cibsecurity/3131", "content": "ATENTION\u203c New - CVE-2018-12205\n\nPrivilege escalation vulnerability in Platform Sample/ Silicon Reference firmware for 8th Generation Intel(R) Core Processor, 7th Generation Intel(R) Core Processor may allow unauthenticated user to potentially execute arbitrary code via physical access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:19:54.000000Z"} {"uuid": "2c54a31b-589b-47c5-a909-13294f3e2e5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2018-12205", "type": "seen", "source": "https://t.me/cibsecurity/3131", "content": "ATENTION\u203c New - CVE-2018-12205\n\nPrivilege escalation vulnerability in Platform Sample/ Silicon Reference firmware for 8th Generation Intel(R) Core Processor, 7th Generation Intel(R) Core Processor may allow unauthenticated user to potentially execute arbitrary code via physical access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-03-14T23:19:54.000000Z"} https://db.gcve.eu/sighting/2c54a31b-589b-47c5-a909-13294f3e2e5b/export Thu, 14 Mar 2019 23:19:54 +0000